A sophisticated scam targeting individuals in the Middle East has been uncovered, where cybercriminals impersonate government officials to steal personal and financial information. The scam involves scammers contacting victims via phone calls and convincing them to download remote access software like AnyDesk or TeamViewer. Once the software is installed, the fraudsters gain control over the victim’s device, allowing them to access sensitive data such as credit card information and one-time passwords (OTPs) used in online transactions.
The scam is particularly effective because it targets individuals who have already interacted with government services portals, often making them more likely to trust the scammers. These victims are led to believe they are receiving assistance with refund claims for unsatisfactory purchases. However, after gaining access to their devices, scammers use the information to make online purchases or recharge local e-wallets, causing significant financial losses, often averaging $1,300, with some victims losing up to $5,000.
The scam’s success raises concerns about the potential involvement of insiders, suggesting that the scammers may have access to government complaint data, which helps them target specific individuals. Group-IB, the cybersecurity firm tracking this scheme, believes that the perpetrators may also be using information-stealing malware like META, Redline, Vidar, and Formbook to further exploit victims’ personal data. The widespread nature of this scam across the Middle East points to a growing trend of social engineering tactics being used to manipulate individuals into giving up sensitive information.
To avoid falling victim to such scams, experts advise individuals to be cautious when receiving unsolicited phone calls and requests to download remote access applications. They recommend never sharing sensitive information over the phone and suggest that government agencies and financial institutions implement stronger security measures to educate the public about these risks. The exploit of legitimate tools such as AnyDesk and TeamViewer underscores the growing danger posed by seemingly harmless software when misused by malicious actors.
